summaryrefslogtreecommitdiffstats
path: root/retiolum
diff options
context:
space:
mode:
authorlassulus <lassulus@googlemail.com>2011-12-29 20:58:40 +0100
committerlassulus <lassulus@googlemail.com>2011-12-29 20:58:40 +0100
commit8e676124bb26e82c76974dea6e6938fa94116bb9 (patch)
treef6345ba46a67a4af115f91c662036ec0a8acc3e3 /retiolum
parent6554c968a77faa4a3e55632f7b92411a108e5275 (diff)
routing doku
Diffstat (limited to 'retiolum')
-rw-r--r--retiolum/doc/routing/tun30
1 files changed, 30 insertions, 0 deletions
diff --git a/retiolum/doc/routing/tun b/retiolum/doc/routing/tun
new file mode 100644
index 00000000..a83ffc27
--- /dev/null
+++ b/retiolum/doc/routing/tun
@@ -0,0 +1,30 @@
+tunneling:
+ovpn relevant fixes:
+
+ -up /etc/openvpn/update-resolv-conf
+ -down /etc/openvpn/update-resolv-conf
+ +#up /etc/openvpn/update-resolv-conf
+ +#down /etc/openvpn/update-resolv-conf
+
+ +route-nopull
+ -redirect-gateway $def1
+ -dev tun
+ +dev $(your interfacename here)
+ +dev-type tun
+
+ -auth-user-pass
+ +auth-user-pass $(your openvpn user_pass_file here)
+
+normal firewall stuff:
+ shorewall:
+ in /etc/shorewall/interfaces
+ +loc $(interfacename) detect tcpflags,nosmurfs,routefilter,logmartians
+
+ip+iptables
+ iptables --table nat -A POSTROUTING -o $(your interfacename here) -j MASQUERADE
+ ip route add table $(interfacename) via $(route -n | grep $(interfacename) | grep 0.0.0.0 | awk '{print $1}') dev $(interfacename)
+ ip rule add $(your rule spec here) table $(interfacename)
+
+
+
+